System architecture

Credential states Enterprise architecture

One Core

The One Core enables the full lifecycle of credentials and can be integrated via REST, SDK, or mobile SDK.

One Desk

The One Desk is a server-based solution that uses the One Core via REST and adds enterprise functionality such as user and session management, and integrates with IAM solutions supporting OpenID Connect. It includes both backend and frontend components.

IAM and Gateway

The One Desk requires an IAM solution and an OAuth2 Proxy as a gateway; it expects access tokens and exchanges them for application-specific tokens. Any IAM solution that supports OpenID Connect is compatible.

OpenID Bridge

The OpenID Bridge is a feature that enables any OIDC provider to accept digital credentials for end user authentication and profile information by mapping credential claims to OIDC claims. This can be used as part of the One Desk or as a standalone solution for end user authentication.

One Core​

One Desk​

IAM and Gateway​

OpenID Bridge​

One Core

One Desk

IAM and Gateway

OpenID Bridge